⚠️ XSS - scour.speculate245

mondi04/htmforge: Type-safe, composable HTML components for Python. Server-side rendered, HTMX-first, framework-agnostic — no templates, no string formatting, no XSS surprises.

🔐Web Application Security Code

github.com··r/SideProject

Personal apps with no back end: static site and OAuth PKCE and OpenRouter

🔐OAuth 2.0

type2fun.net··Hacker News

Report the Floor: A Training-Free Conformal Interval Is a Mandatory Baseline for Probabilistic Time-Series Forecasting

🎮Reinforcement Learning Academic

arxiv.org·

Spring Framework 7.0.8 and 6.2.19 Available Now

🔒Security Blog

spring.io·

SAST vs SCA: Key Differences for AppSec Teams

🔒Security

orca.security·

Scala 3.8.4 is now available!

🔐Web Application Security

scala-lang.org·

Adobe Patches 123 Vulnerabilities

🔐Web Application Security

securityweek.com·

Alleged DUI crash on CO-115 sends multiple to hospital, causes lengthy delays

🚨Incident Response

krdo.com·

Show HN: We post-trained a model that pen tests instead of refusing your code

🔗ssrf

argusred.com··Hacker News, r/netsec

From prompt to pwned: chaining LLM and web bugs to Admin

🛡️AI Security Blog

blog.quarkslab.com·

Ask HN: Do you install other people agent skills?

🔐Web Application Security Discussion

news.ycombinator.com··Hacker News

Secure Code Review Using AI without burning tokens

📋OWASP Top 10 Blog

medium.com·

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

🔗ssrf

thehackernews.com·

FluidifyAI/Regen: Open-source incident management Alerts, on-call, AI post-mortems. Self-hosted alternative to PagerDuty & incident.io. Works with Prometheus, Grafana, Datadog, Slack, and Teams. Free forever, BYO-AI.

🔧DevOps Code

github.com··r/SideProject

Major Chase Sapphire Preferred Card Changes Unveiled: They’re A Mixed Bag

⏰Time Management

onemileatatime.com·

Token-Mediating Back end: An alternative to the BFF architecture

🔐OAuth 2.0 Blog

fusionauth.io··Hacker News

Score-based diffusion models for accurate crystal-structure inpainting and reconstruction of hydrogen positions

🎮Reinforcement Learning Academic

nature.com·

Hidden Security Risks in Modern JavaScript Frameworks

Patner Case Study | Pax8

Trump DOJ to denaturalize 17 US citizens in rare move

mondi04/htmforge: Type-safe, composable HTML components for Python. Server-side rendered, HTMX-first, framework-agnostic — no templates, no string formatting, no XSS surprises.

Personal apps with no back end: static site and OAuth PKCE and OpenRouter

Report the Floor: A Training-Free Conformal Interval Is a Mandatory Baseline for Probabilistic Time-Series Forecasting

Spring Framework 7.0.8 and 6.2.19 Available Now

SAST vs SCA: Key Differences for AppSec Teams

Scala 3.8.4 is now available!

Adobe Patches 123 Vulnerabilities

Alleged DUI crash on CO-115 sends multiple to hospital, causes lengthy delays

Show HN: We post-trained a model that pen tests instead of refusing your code

From prompt to pwned: chaining LLM and web bugs to Admin

Ask HN: Do you install other people agent skills?

Secure Code Review Using AI without burning tokens

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

FluidifyAI/Regen: Open-source incident management Alerts, on-call, AI post-mortems. Self-hosted alternative to PagerDuty & incident.io. Works with Prometheus, Grafana, Datadog, Slack, and Teams. Free forever, BYO-AI.

Major Chase Sapphire Preferred Card Changes Unveiled: They’re A Mixed Bag

Token-Mediating Back end: An alternative to the BFF architecture

Score-based diffusion models for accurate crystal-structure inpainting and reconstruction of hydrogen positions